IsDefined

Forum|Forum|13 years ago
August 12, 2012
1 reply
383 views

This question was posted in response to the following article: http://help.adobe.com/en_US/ColdFusion/9.0/CFMLRef/WSc3ff6d0ea77859461172e0811cbec22c24-7fbd.html

This topic has been closed for replies.

S

steveurow

Participant

there seems to me to be a security risk here. IsDefined("string") where string is from a url parameter or a form could be of the nature of being a javascript that is executed ! This can allow all sorts of access to webpages and code insertion right?

12Robots

Participating Frequently

Could you offer an example of where this might be a security risk? I am not sure I see how checking to see if a variable exists would cause a problem. Perhaps an example could help clear it up.

jason

Sign up

To post, reply, or follow discussions, please sign in with your Adobe ID.

Sign in to Adobe Community

To post, reply, or follow discussions, please sign in with your Adobe ID.

Scanning file for viruses.

This file cannot be downloaded